CVE-2026-0792 ALGO 8180 IP Audio Alerter SIP INVITE Alert-Info Stack-based Buffer Overflow Remote Code Execution Vulnerability

ALGO 8180 IP Audio Alerter SIP INVITE Alert-Info Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of ALGO 8180 IP Audio Alerter devices. Authentication is not required to exploit this...

CVE-2026-0784

ALGO 8180 IP Audio Alerter's Web UI is vulnerable to a command injection due to insufficient validation of user-supplied input before it is used in a system call. The flaw allows remote attackers to execute arbitrary code with the device’s privileges, as described by ZDI-CAN-28293 and reflected i...

CVE-2026-0779 ALGO 8180 IP Audio Alerter Ping Command Injection Remote Code Execution Vulnerability

ALGO 8180 IP Audio Alerter Ping Command Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of ALGO 8180 IP Audio Alerter devices. Authentication is required to exploit this vulnerability. The specific flaw...

Malicious code in integromat-ui (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7de4e86762c4fcb7682615925818028501cfb55cdd9fdeaf238f2e186b1f121e The package integromat-ui was found to contain malicious code...

MAL-2026-484 Malicious code in translation-note (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e07633850d68301541c30e7f731a444071e400f71083928dca6418a9a59c769a The package translation-note was found to contain malicious code. Source: ghsa-malware 95cfe5df95e94bc56327c2241fd1d850ee8bae580cdecfae84ee6f81f09150...

ALGO 8180 IP Audio Alerter security vulnerability

ALGO 8180 IP Audio Alerter is an IP speaker developed by ALGO Corporation. The ALGO 8180 IP Audio Alerter has a security vulnerability. This vulnerability stems from the lack of data length validation when processing SIP INVITE requests’ Alert-Info headers, which may lead to stack buffer overflow...

CVE-2026-21264

creationtimestamp| type| source ---|---|--- 2026-01-22 23:30:28+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3md2dqiyfsi2r 2026-01-23 00:24:09+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3md2gqhpvgr2i 2026-02-13 04:55:25+00:00| seen|...

EUVD-2026-4178

Malicious code in cflashfiles PyPI...

CVE-2026-22461

creationtimestamp| type| source ---|---|--- 2026-01-22 17:44:05+00:00| seen| https://gist.github.com/Darkcrai86/74e2626fc165635cd0ee959be4d16af3...

CVE-2025-68018

Missing Authorization vulnerability in StackWC Order Listener for WooCommerce woc-order-alert allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Order Listener for WooCommerce: from n/a through = 3.6.1...

EUVD-2026-4199

Malicious code in icloudprocessor PyPI...

PT-2026-4061

Name of the Vulnerable Software and Affected Versions ilmosys Order Listener for WooCommerce versions through 3.6.1 Description The software contains a flaw related to incorrectly configured access control security levels, leading to a missing authorization issue. This allows for exploitation of...

Azure Linux 3.0 Security Update: kernel (CVE-2024-47707)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-47707 advisory. - In the Linux kernel, the following vulnerability has been resolved: ipv6: avoid possible NULL deref in...

CVE-2026-23524

creationtimestamp| type| source ---|---|--- 2026-01-21 22:18:53+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mcxpbmdl3m2g 2026-01-21 22:20:35+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mcxpemt7fi2o 2026-01-22 02:22:44+00:00| seen|...

GHSA-CXC5-RRJ5-8PF3

creationtimestamp| type| source ---|---|--- 2026-01-21 21:19:37+00:00| seen| Telegram/UBFfKHG06E0U29GGUyxY4K-TiI8MYdEIgyx0Bfd0z-0...

CERTFR-2026-ACT-003

creationtimestamp| type| source ---|---|--- 2026-01-21 16:30:00+00:00| seen| https://social.numerique.gouv.fr/users/certfr/statuses/115934035856124849...

CVE-2025-13335

creationtimestamp| type| source ---|---|--- 2026-01-21 16:25:05+00:00| seen| https://bsky.app/profile/o2cloud.bsky.social/post/3mcx3ixs35a2l 2026-01-22 11:38:14+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mcz3wxda5v2t 2026-01-22 12:33:56+00:00| seen|...

CVE-2024-55020

creationtimestamp| type| source ---|---|--- 2026-01-21 10:01:35+00:00| seen| https://gist.github.com/AenganZ/f86ed0da28825a1432ec697f484622de 2026-03-03 21:58:53+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mg6rblrgik2u 2026-03-03 22:02:09+00:00| seen|...

EUVD-2026-3728

Malicious code in oce-collaborate npm...

MAL-2026-422 Malicious code in oce-icons (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5b843dd5f2dd468eea116bc6b01258c72903738ea423def44e73bbee3e0a477f The package oce-icons was found to contain malicious code. Source: ghsa-malware e946a5aefa4f4734044a2667883bff32c43c93401630708063066e1348fb2b25 Any...